FreeBSD : GnuTLS -- improper SSL certificate verification (856a6f84-8b30-11de-8062-00e0815b8da8)
High Nessus Plugin ID 40659
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionGnuTLS reports :
By using a NUL byte in CN/SAN fields, it was possible to fool GnuTLS into 1) not printing the entire CN/SAN field value when printing a certificate and 2) cause incorrect positive matches when matching a hostname against a certificate.
SolutionUpdate the affected packages.